I'm not so sure how "anonymous" the purchase of keys is, even for Developer signing keys. They still only give you limited access to APIs... so while his "If A then B" statement may (*may*) be true, I don't know how likely "A" is in the first place.

The article is accurate though in that they comment on how BB's popularity will make them more of a target. Likely still waaaaaaaaay less vulnerable than your standard WinMo device, but whatevs.